Microsemi S350i Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Microsemi S350i Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2014-5071 — CVSS 9.8 (critical): SQL injection vulnerability in the checkPassword function in Symmetricom s350i 2.70.15 allows remote attackers to execute arbitrary SQL…
CVE-2014-5070 — CVSS 8.8 (high): Symmetricom s350i 2.70.15 allows remote authenticated users to gain privileges via vectors related to pushing unauthenticated users to the…
CVE-2014-5068 — CVSS 7.5 (high): Directory traversal vulnerability in the web application in Symmetricom s350i 2.70.15 allows remote attackers to read arbitrary files via a…
CVE-2014-5069 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in Symmetricom s350i 2.70.15 allows remote attackers to inject arbitrary web script or HTML via…